What problem occurs when executing the following command from within a netcat raw shell? sudo cat /etc/shadow

A. Sudo does not work at all from a shell

B. Sudo works fine if the user and command are both in the /etc/sudoers file

C. The display blanks after typing the sudo command

D. You will not be able to type the password at the password prompt

During a penetration test we determine that TCP port 22 is listening on a target host. Knowing that SSHD is the typical service that listens on that port we attempt to validate that assumption with an SSH client but our effort Is unsuccessful. It turns out that it is actually an Apache webserver listening on the port, which type of scan would have helped us to determine what service was listening on port 22?

A. Version scanning

B. Port scanning

C. Network sweeping

D. OS fingerprinting

John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He is using a tool to crack the wireless encryption keys. The description of the tool is as follows:

Which of the following tools is John using to crack the wireless encryption keys?

A. AirSnort

B. PsPasswd

C. Cain

D. Kismet

John works as a Professional Penetration Tester. He has been assigned a project to test the Website security of www.we-are-secure Inc. On the We-are-secure Website login page, he enters ='or''=' as a username and successfully logs on to the user page of the Web site. Now, John asks the we-are-secure Inc. to improve the login page PHP script. Which of the following suggestions can John give to improve the security of the we-are-secure Website login page from the SQL injection attack?

A. Use the escapeshellarg() function

B. Use the session_regenerate_id() function

C. Use the mysql_real_escape_string() function for escaping input

D. Use the escapeshellcmd() function

Adam works as a professional Computer Hacking Forensic Investigator. He wants to investigate a suspicious email that is sent using a Microsoft Exchange server. Which of the following files will he review to accomplish the task? Each correct answer represents a part of the solution. Choose all that apply.

A. Checkpoint files

B. cookie files

C. Temporary files

D. EDB and STM database files

How many bits encryption does SHA-1 use?

A. 140

B. 512

C. 128

D. 160

Which of the following security policies will you implement to keep safe your data when you connect your Laptop to the office network over IEEE 802.11 WLANs? Each correct answer represents a complete solution. Choose two.

A. Using personal firewall software on your Laptop.

B. Using a protocol analyzer on your Laptop to monitor for risks.

C. Using portscanner like nmap in your network.

D. Using an IPSec enabled VPN for remote connectivity.

Peter, a malicious hacker, obtains e-mail addresses by harvesting them from postings, blogs, DNS listings, and Web pages. He then sends large number of unsolicited commercial e-mail (UCE) messages on these addresses. Which of the following e-mail crimes is Peter committing?

A. E-mail Spam

B. E-mail Storm

C. E-mail spoofing

D. E-mail bombing

Which of the following are the countermeasures against WEP cracking? Each correct answer represents a part of the solution. Choose all that apply.

A. Using the longest key supported by hardware.

B. Using a non-obvious key.

C. Using a 16 bit SSID.

D. Changing keys often.

You want to search Microsoft Outlook Web Access Default Portal using Google search on the

Internet so that you can perform the brute force attack and get unauthorized access. What search string will you use to accomplish the task?

A. intitle:index.of inbox dbx

B. intext:"outlook.asp"

C. allinurl:"exchange/logon.asp"

D. intitle:"Index Of" -inurl:maillog maillog size